[Openid-specs-fapi] Issue #629: FAPI2: Specify that redirect_uri's must be exact match (openid/fapi)
josephheenan
issues-reply at bitbucket.org
Wed Nov 1 14:31:19 UTC 2023
New issue 629: FAPI2: Specify that redirect_uri's must be exact match
https://bitbucket.org/openid/fapi/issues/629/fapi2-specify-that-redirect_uris-must-be
Joseph Heenan:
Whilst discussing [https://bitbucket.org/openid/connect/issues/2045/certification-proposed-change-to-how](https://bitbucket.org/openid/connect/issues/2045/certification-proposed-change-to-how) Nat mentioned that he’s not sure that OAuth is sufficiently explicit that redirect\_uri must exactly match the registered one, and we should consider adding a clause to FAPI2 to require exact matching.
More information about the Openid-specs-fapi
mailing list